Any time you see obfuscated code or base64_decode or any other function to handle obfuscated code in PHP or Javascript, that is a sign that something is not right. Legitimate coders don't try to hide what they are doing. A search for browserglobalstat.com reveals that another person on another board complained about his code being modified similar to what happened to you. How access was gained to your account is anyone's guess.

Definitely remove the offending code, or better yet, restore all of your files from backups you know are clean and change all your passwords, including your hosting control panel and FTP passwords. And make sure your file permissions are set properly as recommended by your web host. Hackers like to put in back doors so they can get into your account again if the main exploit is found. If you are using any open source scripts, make sure they are updated to the latest version.

Any time you see obfuscated code or base64_decode or any other function to handle obfuscated code in PHP or Javascript, that is a sign that something is not right. Legitimate coders don't try to hide what they are doing. A search for browserglobalstat.com reveals that another person on another board complained about his code being modified similar to what happened to you. How access was gained to your account is anyone's guess.

Definitely remove the offending code, or better yet, restore all of your files from backups you know are clean and change all your passwords, including your hosting control panel and FTP passwords. And make sure your file permissions are set properly as recommended by your web host. Hackers like to put in back doors so they can get into your account again if the main exploit is found. If you are using any open source scripts, make sure they are updated to the latest version.

Thanks a lot for the suggestions. I have no idea how this code was inserted there but whether it was done manually or by a script, it was inserted at a wrong place so that the page gave an error. That's how I spotted it.